Overview
This course teaches learners how to utilize the Snyk CLI for static code analysis. By the end of the course, students will be able to install the CLI, run Snyk Code tests locally, and integrate them into CI/CD pipelines. The course covers topics such as testing repository code, reviewing CLI results, and scenarios for outputting and exporting results. The teaching method includes practical demonstrations and interactive Q&A sessions. This course is intended for software developers, DevOps engineers, and anyone interested in enhancing the security of their source code.
Syllabus
- Stream Start
- Intros
- Introduction to Snyk CLI - Start
- Installing the Snyk CLI
- Authentication and Monitoring a Repository
- Snyk CLI High-Level Overview
- Running a Snyk Code Scan
- Static & Dynamic Analysis
- Ignoring Paths & Files
- What is a WAF?
- Sorting & Filtering by Severity
- JSON Output & Other Formats
- Advanced SBOM Standards
- Summary
- Stream End
Taught by
Snyk